[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 82.045388][ T32] audit: type=1800 audit(1568277497.105:25): pid=12190 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 82.082087][ T32] audit: type=1800 audit(1568277497.125:26): pid=12190 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 82.102693][ T32] audit: type=1800 audit(1568277497.135:27): pid=12190 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.89' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 91.163478][T12341] netlink: 76 bytes leftover after parsing attributes in process `syz-executor501'. [ 91.173137][T12341] ================================================================== [ 91.181214][T12341] BUG: KMSAN: uninit-value in string+0x4be/0x600 [ 91.187609][T12341] CPU: 1 PID: 12341 Comm: syz-executor501 Not tainted 5.3.0-rc7+ #0 [ 91.195561][T12341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 91.205595][T12341] Call Trace: [ 91.208872][T12341] dump_stack+0x191/0x1f0 [ 91.213974][T12341] kmsan_report+0x162/0x2d0 [ 91.218458][T12341] __msan_warning+0x75/0xe0 [ 91.222943][T12341] string+0x4be/0x600 [ 91.226909][T12341] vsnprintf+0x218f/0x3210 [ 91.231312][T12341] ? si470x_usb_driver_disconnect+0x20/0x110 [ 91.237285][T12341] __request_module+0x2b1/0x11c0 [ 91.242214][T12341] ? kmsan_set_origin+0x26d/0x340 [ 91.247233][T12341] tcf_proto_lookup_ops+0x3e7/0x700 [ 91.252413][T12341] tc_new_tfilter+0xfe0/0x4ce0 [ 91.257156][T12341] ? kmsan_set_origin+0x26d/0x340 [ 91.262160][T12341] ? dwc2_hc_halt+0x450/0x16c0 [ 91.266909][T12341] ? refcount_dec_and_test_checked+0x14c/0x210 [ 91.273044][T12341] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 91.279099][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.285143][T12341] ? tcf_block_offload_unbind+0xa50/0xa50 [ 91.290838][T12341] ? tcf_block_offload_unbind+0xa50/0xa50 [ 91.296549][T12341] rtnetlink_rcv_msg+0xcb6/0x1580 [ 91.301557][T12341] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 91.307601][T12341] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 91.314434][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.320390][T12341] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 91.326443][T12341] ? rhashtable_jhash2+0x3a9/0x4d0 [ 91.331541][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.337511][T12341] ? kmsan_set_origin+0x26d/0x340 [ 91.342515][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.348476][T12341] netlink_rcv_skb+0x431/0x620 [ 91.353303][T12341] ? rtnetlink_bind+0x120/0x120 [ 91.358151][T12341] rtnetlink_rcv+0x50/0x60 [ 91.362545][T12341] netlink_unicast+0xf6c/0x1050 [ 91.367387][T12341] netlink_sendmsg+0x110f/0x1330 [ 91.372315][T12341] ? netlink_getsockopt+0x1430/0x1430 [ 91.377662][T12341] ___sys_sendmsg+0x14ff/0x1590 [ 91.382503][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.388459][T12341] ? __fget_light+0x19f/0x710 [ 91.393116][T12341] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 91.399157][T12341] ? __fget_light+0x1b8/0x710 [ 91.403832][T12341] ? kmsan_get_metadata_or_null+0x208/0x290 [ 91.411787][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.417747][T12341] __se_sys_sendmsg+0x305/0x460 [ 91.422591][T12341] __x64_sys_sendmsg+0x4a/0x70 [ 91.427333][T12341] do_syscall_64+0xbc/0xf0 [ 91.431741][T12341] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 91.437609][T12341] RIP: 0033:0x4401e9 [ 91.441496][T12341] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 91.461079][T12341] RSP: 002b:00007ffc3690c568 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 91.469477][T12341] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004401e9 [ 91.477426][T12341] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003 [ 91.485380][T12341] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 91.493345][T12341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401a70 [ 91.501313][T12341] R13: 0000000000401b00 R14: 0000000000000000 R15: 0000000000000000 [ 91.509278][T12341] [ 91.511589][T12341] Uninit was created at: [ 91.515809][T12341] kmsan_internal_poison_shadow+0x58/0xb0 [ 91.521502][T12341] kmsan_slab_alloc+0xaa/0x120 [ 91.526256][T12341] __kmalloc_node_track_caller+0xb55/0x1320 [ 91.532129][T12341] __alloc_skb+0x306/0xa10 [ 91.536525][T12341] netlink_sendmsg+0x783/0x1330 [ 91.541358][T12341] ___sys_sendmsg+0x14ff/0x1590 [ 91.546189][T12341] __se_sys_sendmsg+0x305/0x460 [ 91.551023][T12341] __x64_sys_sendmsg+0x4a/0x70 [ 91.555764][T12341] do_syscall_64+0xbc/0xf0 [ 91.560158][T12341] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 91.566018][T12341] ================================================================== [ 91.574050][T12341] Disabling lock debugging due to kernel taint [ 91.580173][T12341] Kernel panic - not syncing: panic_on_warn set ... [ 91.586735][T12341] CPU: 1 PID: 12341 Comm: syz-executor501 Tainted: G B 5.3.0-rc7+ #0 [ 91.596071][T12341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 91.606102][T12341] Call Trace: [ 91.609391][T12341] dump_stack+0x191/0x1f0 [ 91.613707][T12341] panic+0x3c9/0xc1e [ 91.617593][T12341] kmsan_report+0x2ca/0x2d0 [ 91.622087][T12341] __msan_warning+0x75/0xe0 [ 91.626588][T12341] string+0x4be/0x600 [ 91.630608][T12341] vsnprintf+0x218f/0x3210 [ 91.635025][T12341] ? si470x_usb_driver_disconnect+0x20/0x110 [ 91.641010][T12341] __request_module+0x2b1/0x11c0 [ 91.645942][T12341] ? kmsan_set_origin+0x26d/0x340 [ 91.650957][T12341] tcf_proto_lookup_ops+0x3e7/0x700 [ 91.656150][T12341] tc_new_tfilter+0xfe0/0x4ce0 [ 91.660929][T12341] ? kmsan_set_origin+0x26d/0x340 [ 91.665937][T12341] ? dwc2_hc_halt+0x450/0x16c0 [ 91.670686][T12341] ? refcount_dec_and_test_checked+0x14c/0x210 [ 91.676835][T12341] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 91.682965][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.688971][T12341] ? tcf_block_offload_unbind+0xa50/0xa50 [ 91.694684][T12341] ? tcf_block_offload_unbind+0xa50/0xa50 [ 91.700387][T12341] rtnetlink_rcv_msg+0xcb6/0x1580 [ 91.705484][T12341] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 91.711536][T12341] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 91.717583][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.723545][T12341] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 91.729697][T12341] ? rhashtable_jhash2+0x3a9/0x4d0 [ 91.734859][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.740852][T12341] ? kmsan_set_origin+0x26d/0x340 [ 91.745981][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.751958][T12341] netlink_rcv_skb+0x431/0x620 [ 91.756713][T12341] ? rtnetlink_bind+0x120/0x120 [ 91.762950][T12341] rtnetlink_rcv+0x50/0x60 [ 91.767356][T12341] netlink_unicast+0xf6c/0x1050 [ 91.772194][T12341] netlink_sendmsg+0x110f/0x1330 [ 91.777127][T12341] ? netlink_getsockopt+0x1430/0x1430 [ 91.782486][T12341] ___sys_sendmsg+0x14ff/0x1590 [ 91.787325][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.793283][T12341] ? __fget_light+0x19f/0x710 [ 91.797938][T12341] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 91.803992][T12341] ? __fget_light+0x1b8/0x710 [ 91.808649][T12341] ? kmsan_get_metadata_or_null+0x208/0x290 [ 91.814521][T12341] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 91.820565][T12341] __se_sys_sendmsg+0x305/0x460 [ 91.825414][T12341] __x64_sys_sendmsg+0x4a/0x70 [ 91.830154][T12341] do_syscall_64+0xbc/0xf0 [ 91.834561][T12341] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 91.840451][T12341] RIP: 0033:0x4401e9 [ 91.844327][T12341] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 91.863908][T12341] RSP: 002b:00007ffc3690c568 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 91.872305][T12341] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004401e9 [ 91.880252][T12341] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003 [ 91.888201][T12341] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 91.896153][T12341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401a70 [ 91.904113][T12341] R13: 0000000000401b00 R14: 0000000000000000 R15: 0000000000000000 [ 91.913466][T12341] Kernel Offset: disabled [ 91.917793][T12341] Rebooting in 86400 seconds..